diff --git a/charts/atlantis/Chart.yaml b/charts/atlantis/Chart.yaml index e833de26..bc34e3b4 100644 --- a/charts/atlantis/Chart.yaml +++ b/charts/atlantis/Chart.yaml @@ -3,7 +3,7 @@ apiVersion: v1 appVersion: v0.28.1 description: A Helm chart for Atlantis https://www.runatlantis.io name: atlantis -version: 5.1.1 +version: 5.1.2 keywords: - terraform home: https://www.runatlantis.io diff --git a/charts/atlantis/README.md b/charts/atlantis/README.md index 9f878ad4..bd9b052d 100644 --- a/charts/atlantis/README.md +++ b/charts/atlantis/README.md @@ -137,6 +137,7 @@ extraManifests: | initConfig.script | string | Check values.yaml. | Script to run on the init container. | | initConfig.securityContext | object | `{}` | Security context for the container. | | initConfig.sharedDir | string | `"/plugins"` | SharedDir is set as env var INIT_SHARED_DIR. | +| initConfig.sharedDirReadOnly | bool | `true` | | | initConfig.sizeLimit | string | `"100Mi"` | Size for the shared volume. | | initConfig.workDir | string | `"/tmp"` | | | initContainers | list | `[]` | Optionally specify init containers manifests to be added to the Atlantis pod. Check values.yaml for examples. | @@ -384,9 +385,9 @@ To perform a smoke test of the deployment (i.e. ensure that the Atlantis UI is u ## Update documentation -Documentations is auto-generated using [helm-docs](https://github.com/norwoodj/helm-docs). +Documentation is auto-generated using [helm-docs](https://github.com/norwoodj/helm-docs). -To update run the follwogin (from the root path of the repository): +To update run the following (from the root path of the repository): 1. If required, update `charts/atlantis/README.md.gotmpl` 2. Run `make docs` diff --git a/charts/atlantis/README.md.gotmpl b/charts/atlantis/README.md.gotmpl index 4694ba8a..6be28009 100644 --- a/charts/atlantis/README.md.gotmpl +++ b/charts/atlantis/README.md.gotmpl @@ -219,9 +219,9 @@ To perform a smoke test of the deployment (i.e. ensure that the Atlantis UI is u ## Update documentation -Documentations is auto-generated using [helm-docs](https://github.com/norwoodj/helm-docs). +Documentation is auto-generated using [helm-docs](https://github.com/norwoodj/helm-docs). -To update run the follwogin (from the root path of the repository): +To update run the following (from the root path of the repository): 1. If required, update `charts/atlantis/README.md.gotmpl` 2. Run `make docs` diff --git a/charts/atlantis/templates/statefulset.yaml b/charts/atlantis/templates/statefulset.yaml index aa11e5ba..98134567 100644 --- a/charts/atlantis/templates/statefulset.yaml +++ b/charts/atlantis/templates/statefulset.yaml @@ -567,7 +567,7 @@ spec: {{- if .Values.initConfig.enabled }} - name: init-shared-path mountPath: {{ .Values.initConfig.sharedDir }} - readOnly: true + readOnly: {{ .Values.initConfig.sharedDirReadOnly }} {{- end }} resources: {{- toYaml .Values.resources | nindent 12 }} diff --git a/charts/atlantis/values.schema.json b/charts/atlantis/values.schema.json index 73ae7d7b..8163ab6e 100644 --- a/charts/atlantis/values.schema.json +++ b/charts/atlantis/values.schema.json @@ -1010,6 +1010,10 @@ "type": "string", "description": "sharedDir is set as env var INIT_SHARED_DIR" }, + "sharedDirReadOnly": { + "type": "boolean", + "description": "Sets permissions level for the SharedDir in the main container to ReadWrite when true or ReadWrite when false" + }, "workDir": { "type": "string", "description": "Starting directory for the script" diff --git a/charts/atlantis/values.yaml b/charts/atlantis/values.yaml index 7923796c..a72e5e5d 100644 --- a/charts/atlantis/values.yaml +++ b/charts/atlantis/values.yaml @@ -564,6 +564,7 @@ initConfig: imagePullPolicy: IfNotPresent # -- SharedDir is set as env var INIT_SHARED_DIR. sharedDir: /plugins + sharedDirReadOnly: true workDir: /tmp # -- Size for the shared volume. sizeLimit: 100Mi